Vulnerabilities > Adodb Project

DATE CVE VULNERABILITY TITLE RISK
2022-01-25 CVE-2021-3850 Improper Authentication vulnerability in multiple products
Authentication Bypass by Primary Weakness in GitHub repository adodb/adodb prior to 5.20.21.
network
low complexity
adodb-project debian CWE-287
critical
9.1
2017-05-12 CVE-2016-4855 Cross-site Scripting vulnerability in Adodb Project Adodb
Cross-site scripting vulnerability in ADOdb versions prior to 5.20.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
4.3
2016-10-03 CVE-2016-7405 SQL Injection vulnerability in multiple products
The qstr method in the PDO driver in the ADOdb Library for PHP before 5.x before 5.20.7 might allow remote attackers to conduct SQL injection attacks via vectors related to incorrect quoting.
network
low complexity
adodb-project fedoraproject CWE-89
critical
9.8